Peer-Driven Insights

Regulatory Compliance

About this topic

Regulatory compliance refers to the adherence to laws and regulations that govern business operations. Non-compliance can result in legal penalties, including fines or sanctions.

Active Ambassadors in This Topic

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

India

View All Community Ambassadors

Community Posts

When will we see drones for human transportation?

Read More Comments

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

Read More Comments

What are the hurdles to making cryptocurrency part of traditional economies?

Read More Comments

What cryptocurrency regulations might we see in the near future?

Read More Comments

How does your cyber compliance team stay informed about new and changing regulations impacting your organization's compliance? Additionally, how are cyber compliance teams tracking, measuring and reporting on internal compliance?

Who has been the best recent-acquirer in cybersecurity? Details and feedback in comments...

Cisco (Duo)16%

Palo Alto (Aporeto, Twistlock, CloudGenix)28%

VMware (Carbon Black)26%

Broadcom (Symantec)9%

Zoom (Keybase)9%

NTT (WhiteHat)4%

F5 Networks (Shape Security)3%

Sumo Logic (JASK)1%

OTHER - share in comments1%

View Results

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

Read More Comments

Biden’s executive order on AI describes requirements for reporting red-teaming results… if this requirement took effect tomorrow, as an actual law that applied to your company, would your org be equipped to satisfy it?

Yes, definitely!21%

Yes, probably…66%

No12%

I don’t know

View Results

How do you navigate regulatory uncertainty (e.g., data privacy and AI) when deploying digital tools in your organization globally?

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Read More Comments

Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply.

Multiple environments32%

Segregation of duty42%

Authentication62%

QA testing52%

Key management28%

Security protocols29%

Encryption17%

Other (share details in comments)2%

View Results

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?

Read More Comments

Seeking insights for research universities regarding CMMC 2.0 adoption and compliance. I'm listing our full question set below, but we would welcome insights on any or all of these:

1. What is the anticipated timeline for CMMC 2.0 adoption by the Federal Government? Any insights on the expected rollout and implementation schedule?

2. From a Higher Ed CIO perspective, what are the key operational differences between each "level" in CMMC 2.0? Are there any specific challenges or considerations especially for research universities?

3. For a research university, which CMMC level would be the most suitable target? Are there any key dates or deadlines that Higher Eds and researchers should be aware of in their compliance journey?

4. What are the most crucial features or elements of CMMC that universities need to achieve compliance? Any recommendations or best practices?

5. Specifically, are there any requirements in CMMC for 7/24/365 "eyes on glass" network and/or endpoint monitoring? If there is an endpoint requirement, does it extend to all servers and laptops issued by the university, or is it limited to hosts involved in research grants? What is expected to demonstrate compliance in this regard?

6. Apart from CMMC compliance, are there other considerations or or strategies to consider when seeking to qualify for/reduce cyber risk insurance costs?

What tools have been most helpful to gather evidence for a SOC 2 audit?

Read More Comments

Can you share any best practices for managing compliance risks in a hybrid-cloud environment?

Read More Comments

What regulatory changes are most impacting your budget planning currently? How have you adapted your cybersecurity budget to meet new compliance requirements, if at all?

Read More Comments

About this topic

Active Ambassadors in This Topic

Rathik Pathak

Community Posts

When will we see drones for human transportation?

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

What are the hurdles to making cryptocurrency part of traditional economies?

What cryptocurrency regulations might we see in the near future?

How does your cyber compliance team stay informed about new and changing regulations impacting your organization's compliance? Additionally, how are cyber compliance teams tracking, measuring and reporting on internal compliance?

Who has been the best recent-acquirer in cybersecurity? Details and feedback in comments...

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

Biden’s executive order on AI describes requirements for reporting red-teaming results… if this requirement took effect tomorrow, as an actual law that applied to your company, would your org be equipped to satisfy it?

How do you navigate regulatory uncertainty (e.g., data privacy and AI) when deploying digital tools in your organization globally?

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply.

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?If not - what is stopping you from setting this up?

What tools have been most helpful to gather evidence for a SOC 2 audit?

Can you share any best practices for managing compliance risks in a hybrid-cloud environment?

What regulatory changes are most impacting your budget planning currently? How have you adapted your cybersecurity budget to meet new compliance requirements, if at all?

Community Posts

When will we see drones for human transportation?

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

What are the hurdles to making cryptocurrency part of traditional economies?

What cryptocurrency regulations might we see in the near future?

How does your cyber compliance team stay informed about new and changing regulations impacting your organization's compliance? Additionally, how are cyber compliance teams tracking, measuring and reporting on internal compliance?

Who has been the best recent-acquirer in cybersecurity? Details and feedback in comments...

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

Biden’s executive order on AI describes requirements for reporting red-teaming results… if this requirement took effect tomorrow, as an actual law that applied to your company, would your org be equipped to satisfy it?

How do you navigate regulatory uncertainty (e.g., data privacy and AI) when deploying digital tools in your organization globally?

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply.

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?If not - what is stopping you from setting this up?

What tools have been most helpful to gather evidence for a SOC 2 audit?

Can you share any best practices for managing compliance risks in a hybrid-cloud environment?

What regulatory changes are most impacting your budget planning currently? How have you adapted your cybersecurity budget to meet new compliance requirements, if at all?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?